-
公开(公告)号:US07730522B2
公开(公告)日:2010-06-01
申请号:US11130301
申请日:2005-05-16
摘要: In response to receiving a communication from a first process directed to a second process, a trusted entity determines if an object reference in the communication refers to an object owned by a first process which is being exported to a second process or if the communication refers to an object not owned by the first process which is being passed to the second process. The trusted entity generates a second object reference for use by the second process. Use of a naming convention identifies the reference as a reference to an object which is foreign to or owned by the processes.
摘要翻译: 响应于从针对第二进程的第一进程接收到通信,可信实体确定通信中的对象引用是否指向被导出到第二进程的第一进程拥有的对象,或者如果通信是指 未被第一个进程所拥有的对象正被传递给第二个进程。 受信实体生成第二个对象引用供第二个进程使用。 使用命名约定将引用标识为对进程外部拥有或拥有的对象的引用。
-
2.发明授权Coordinating reference counting between entities executing within separate address spaces 有权协调在单独地址空间内执行的实体之间的引用计数公开(公告)号:US07581232B2
公开(公告)日:2009-08-25
申请号:US11130308
申请日:2005-05-16
IPC分类号: G06F3/00 , G06F9/44 , G06F9/46 , G06F13/00 , G06F15/173
CPC分类号: G06F9/465 , G06F9/5016 , G06F9/5022 , G06F2209/463
摘要: Reference counting is shared between an in-process service runtime and a machine-wide service. The service maintains a global reference count, a global export count, and an exports before revoke count. When the global reference count for a resource or object drops to zero, the machine-wide service deletes the table entry for the object or resource and sends an unref message including the value of the global export count to the sharing process. If the local export count is greater than the global export count of the unref, there are committed exports which have not yet been unreferenced. If both counts are the same, the committed exports have been accounted for and a revoke operation can be issued.
摘要翻译: 引用计数在进程内服务运行时和机器范围服务之间共享。 服务在撤销计数之前维护全局引用计数,全局导出计数和导出。 当资源或对象的全局引用计数下降到零时,机器范围的服务将删除对象或资源的表项,并将包含全局导出计数值的未引用消息发送到共享进程。 如果本地出口计数大于unref的全局出口计数,那么有承诺的出口尚未被引用。 如果两者都是一样的,承诺的出口已经被核算,可以发放撤销经营。
-
公开(公告)号:US07996841B2
公开(公告)日:2011-08-09
申请号:US11301065
申请日:2005-12-12
IPC分类号: G06F9/46
CPC分类号: G06F21/53 , G06F21/6281 , G06F2221/2141 , H04L49/90
摘要: A containment mechanism provides for the grouping and isolation of multiple processes running on a single computer using a single instance of the operating system. A system is divided into one or more side-by-side and/or nested spaces enabling the partitioning and controlled sharing of resources by creating different views of hierarchical name spaces by creating a new branch of an existing global system name space or by linking the sub-root level nodes of a new hierarchy to a subset of nodes in an existing global system name space.
摘要翻译: 遏制机制提供了使用单个操作系统实例在单个计算机上运行的多个进程的分组和隔离。 系统被划分为一个或多个并排和/或嵌套空间,通过创建现有全球系统名称空间的新分支,通过创建分层名称空间的不同视图来实现资源的分区和控制共享,或者通过链接 新层次结构的子根级别节点到现有全局系统名称空间中的节点子集。
-
公开(公告)号:US07447896B2
公开(公告)日:2008-11-04
申请号:US11301066
申请日:2005-12-12
IPC分类号: G06F9/24
CPC分类号: G06F9/4401 , Y10S707/99939
摘要: An intra-operating system isolation mechanism called a silo provides for the grouping and isolation of processes running on a single computer using a single instance of the operating system. The operating system enables the controlled sharing of resources by providing a view of a system name space to processes executing within an isolated application called a server silo. A server silo is created by performing a separate “mini-boot” of user-level services within the server silo. The single OS image serving the computer employs the mechanism of name space containment to constrain which server silos can use which resource(s). Restricting access to resources is therefore directly based on the process or application placed in the server silo rather than who is running the application because if a process or application is unable to resolve a name used to access a resource, it will be unable to use the resource.
摘要翻译: 称为仓库的操作系统隔离机制提供了使用单个操作系统实例在单个计算机上运行的进程的分组和隔离。 操作系统通过提供系统名称空间的视图来实现资源的受控共享,以便在被称为服务器仓的隔离应用程序内执行的进程进行处理。 通过在服务器仓内执行用户级服务的单独“微引导”来创建服务器仓库。 服务于计算机的单个OS映像使用名称空间容纳的机制来约束哪个服务器孤岛可以使用哪个资源。 因此,限制对资源的访问直接基于放置在服务器仓中的进程或应用程序,而不是运行应用程序的用户,因为如果进程或应用程序无法解析用于访问资源的名称,则无法使用 资源。
-
公开(公告)号:US07434228B2
公开(公告)日:2008-10-07
申请号:US11129847
申请日:2005-05-16
申请人: Jose M. Bernabeu-Auban , Jeff L. Havens , Yousef A. Khalidi , Frank V. Peschel-Gallee , Madhusudhan Talluri
发明人: Jose M. Bernabeu-Auban , Jeff L. Havens , Yousef A. Khalidi , Frank V. Peschel-Gallee , Madhusudhan Talluri
IPC分类号: G06F13/00
CPC分类号: G06F9/547
摘要: An operating system architecture is based on a service model in which active entities (services) are containers for objects having a number of interfaces specified through a contract language that is a subset of the language in which the service is coded. Services may reside in the same address space or may reside in separate address spaces, without changing the programming model or compiled binaries. The location of a service is independent of the location of the service's clients and of services the service calls.
摘要翻译: 操作系统架构基于服务模型,其中活动实体(服务)是具有通过作为服务被编码的语言的子集的合同语言指定的多个接口的对象的容器。 服务可能驻留在相同的地址空间中,或者可能驻留在单独的地址空间中,而不改变编程模型或编译的二进制文件。 服务的位置独立于服务的客户端和服务调用的服务的位置。
-
公开(公告)号:US08539481B2
公开(公告)日:2013-09-17
申请号:US11301093
申请日:2005-12-12
IPC分类号: G06F9/455
CPC分类号: G06F21/6281 , G06F9/45558 , G06F2009/45566
摘要: A containment mechanism provides for the grouping and isolation of multiple processes running on a single computer using a single instance of the operating system. A system is divided into one or more side-by-side and/or nested isolated environments enabling the partitioning and controlled sharing of resources by creating different views of hierarchical name spaces via virtual hierarchies.
摘要翻译: 遏制机制提供了使用单个操作系统实例在单个计算机上运行的多个进程的分组和隔离。 系统分为一个或多个并行和/或嵌套的隔离环境,通过虚拟层次结构创建分层名称空间的不同视图,从而实现资源的分区和控制共享。
-
公开(公告)号:US08312459B2
公开(公告)日:2012-11-13
申请号:US11301071
申请日:2005-12-12
IPC分类号: G06F9/46
CPC分类号: G06F9/5072
摘要: A containment mechanism provides for the grouping and isolation of multiple processes running on a single computer using a single instance of the operating system. A system environment is divided into one or more side-by-side and/or nested spaces enabling the partitioning and controlled sharing of resources by creating different views of hierarchical name spaces via virtual hierarchies. A set of declarative rules specifying access capabilities may specify a set of filter drivers to be used to limit access to nodes in the hierarchical name space. The rules may be applied in sequence to construct a new name space from an existing one, or to add to an existing hierarchy. Filter drivers are used to limit access to nodes in the new name space or new portion of the name space. Access to nodes can be limited (read-only access instead of read/write) or nodes can be hidden altogether. Rules may be specified in a declarative language such as XML.
摘要翻译: 遏制机制提供了使用单个操作系统实例在单个计算机上运行的多个进程的分组和隔离。 系统环境分为一个或多个并排和/或嵌套空间,通过虚拟层次结构创建分层名称空间的不同视图,实现资源的分区和控制共享。 指定访问功能的一组声明性规则可以指定一组用于限制对分层名称空间中的节点的访问的过滤器驱动程序。 这些规则可以按顺序应用,以从现有规则中构建新的名称空间,或添加到现有的层次结构中。 过滤器驱动程序用于限制对新名称空间中节点或名称空间的新部分的访问。 可以限制对节点的访问(只读访问而不是读/写),或者可以完全隐藏节点。 规则可以声明性语言(如XML)来指定。
-
公开(公告)号:US07607142B2
公开(公告)日:2009-10-20
申请号:US11129848
申请日:2005-05-16
摘要: Object invocation may be carried out by one thread in a service which may include multiple executing threads. In a mechanism for implementing a cancellation operation in a cooperative system, a thread identifies an operation to be cancelled. A cancel function has an argument comprising the thread identifier in which the operation is to be cancelled. The cancel function is called by a client process thread to cancel a pending object invocation initiated by the client process. An immediate or hard cancel causes the targeted client and cancel thread to return immediately. A discretionary or soft cancel does not affect the targeted client thread. In either case the server process is notified via a maintenance notification. The target thread of the cancel cannot be reused for other work until the cancel request or notification has returned.
摘要翻译: 对象调用可以由可能包括多个执行线程的服务中的一个线程执行。 在用于在协作系统中实现取消操作的机制中,线程识别要取消的操作。 取消功能具有包括要取消操作的线程标识符的参数。 取消函数由客户端进程线程调用以取消客户端进程启动的挂起对象调用。 立即或严格取消导致目标客户端和取消线程立即返回。 任意或软取消不会影响目标客户端线程。 在任一情况下,通过维护通知通知服务器进程。 取消请求或通知返回之前,取消的目标线程不能重复用于其他工作。
-
公开(公告)号:US07581051B2
公开(公告)日:2009-08-25
申请号:US11129802
申请日:2005-05-16
IPC分类号: G06F13/24
CPC分类号: G06F13/24
摘要: Systems and methods for providing a framework within which device drivers may run at a user-mode level. A platform (e.g., APIC) or bus (PCI bus) generic feature is used to take the CPU out of interrupt mode without having to wait for a user-level driver to clear the device interrupt. This allows writing the complete device driver in user space. The device driver still get notifications on interrupts but not at interrupt priority. The same scheme can be extended to shared interrupts, where multiple devices share a single interrupt line.
摘要翻译: 用于提供设备驱动程序可以以用户模式级别运行的框架的系统和方法。 使用平台(例如APIC)或总线(PCI总线)通用特征将CPU从中断模式中取消,而不必等待用户级驱动程序清除设备中断。 这允许在用户空间中写入完整的设备驱动程序。 设备驱动程序仍然在中断时收到通知,但不会中断优先级。 相同的方案可以扩展到共享中断,其中多个设备共享一个中断线。
-
-
-
-
-
-
-
-
搜索结果
9 条记录 (耗时 0.013 秒)